|
Elgg
Version 4.3
|
Public Member Functions | |
| __construct (UsersRememberMeCookiesTable $cookie_table,\ElggSession $session,\Elgg\Security\Crypto $crypto,\Elgg\Config $config,\Elgg\Http\Request $request) | |
| Constructor. More... | |
| makeLoginPersistent (\ElggUser $user) | |
| Make the user's login persistent. More... | |
| removePersistentLogin () | |
| Remove the persisted login token from client and server. More... | |
| handlePasswordChange (\ElggUser $subject,\ElggUser $modifier=null) | |
| Handle a password change. More... | |
| bootSession () | |
| Boot the persistent login session, possibly returning the user who should be silently logged in. More... | |
| getUserFromToken (string $token) | |
| Get a user from a persistent cookie token. More... | |
| getUserFromHash (string $hash) | |
| Find a user with the given hash. More... | |
| updateTokenUsage (\ElggUser $user) | |
| Update the timestamp linked to a persistent cookie code, this indicates that the code was used recently. More... | |
| removeExpiredTokens ($time) | |
| Remove all persistent codes from the database which have expired based on the cookie config. More... | |
Public Attributes | |
| $_callable_elgg_set_cookie = 'elgg_set_cookie' | |
Protected Member Functions | |
| hashToken (string $token) | |
| Create a hash from the token. More... | |
| setCookie (string $token) | |
| Store the token in the client cookie (or remove the cookie) More... | |
| setSessionToken (string $token) | |
| Store the token in the session (or remove it from the session) More... | |
| generateToken () | |
| Generate a random token (base 64 URL) More... | |
Protected Attributes | |
| $cookie_config | |
| $cookie_token | |
| $session | |
| $crypto | |
| $persistent_cookie_table | |
If a user selects a persistent login, a long, random token is generated and stored in the cookie called "elggperm", and a hash of the token is stored in the DB. If the user's PHP session expires, the session boot sequence will try to log the user in via the token in the cookie.
Definition at line 17 of file PersistentLoginService.php.
| Elgg\PersistentLoginService::__construct | ( | UsersRememberMeCookiesTable | $cookie_table, |
| \ElggSession | $session, | ||
| \Elgg\Security\Crypto | $crypto, | ||
| \Elgg\Config | $config, | ||
| \Elgg\Http\Request | $request | ||
| ) |
Constructor.
| UsersRememberMeCookiesTable | $cookie_table | The persistent cookie storage table |
| \ElggSession | $session | The Elgg session |
| \Elgg\Security\Crypto | $crypto | The cryptography service |
| \Elgg\Config | $config | The site configuration |
| \Elgg\Http\Request | $request | The request |
Definition at line 61 of file PersistentLoginService.php.
| Elgg\PersistentLoginService::bootSession | ( | ) |
Boot the persistent login session, possibly returning the user who should be silently logged in.
Definition at line 131 of file PersistentLoginService.php.
|
protected |
Generate a random token (base 64 URL)
The first char is always "z" to indicate the value has more entropy than the previously generated ones.
Definition at line 286 of file PersistentLoginService.php.
| Elgg\PersistentLoginService::getUserFromHash | ( | string | $hash | ) |
Find a user with the given hash.
| string | $hash | The hashed token |
Definition at line 172 of file PersistentLoginService.php.
| Elgg\PersistentLoginService::getUserFromToken | ( | string | $token | ) |
Get a user from a persistent cookie token.
| string | $token | the cookie token |
Definition at line 155 of file PersistentLoginService.php.
| Elgg\PersistentLoginService::handlePasswordChange | ( | \ElggUser | $subject, |
| \ElggUser | $modifier = null |
||
| ) |
Handle a password change.
| \ElggUser | $subject | The user whose password changed |
| \ElggUser | $modifier | The user who changed the password |
Definition at line 116 of file PersistentLoginService.php.
|
protected |
Create a hash from the token.
| string | $token | The token to hash |
Definition at line 236 of file PersistentLoginService.php.
| Elgg\PersistentLoginService::makeLoginPersistent | ( | \ElggUser | $user | ) |
Make the user's login persistent.
| \ElggUser | $user | The user who logged in |
Definition at line 84 of file PersistentLoginService.php.
| Elgg\PersistentLoginService::removeExpiredTokens | ( | $time | ) |
Remove all persistent codes from the database which have expired based on the cookie config.
| int | \DateTime | string | $time | the base timestamp to use |
Definition at line 215 of file PersistentLoginService.php.
| Elgg\PersistentLoginService::removePersistentLogin | ( | ) |
Remove the persisted login token from client and server.
Definition at line 98 of file PersistentLoginService.php.
|
protected |
Store the token in the client cookie (or remove the cookie)
| string | $token | Empty string to remove cookie |
Definition at line 249 of file PersistentLoginService.php.
|
protected |
Store the token in the session (or remove it from the session)
| string | $token | The token to store in session. Empty string to remove. |
Definition at line 270 of file PersistentLoginService.php.
| Elgg\PersistentLoginService::updateTokenUsage | ( | \ElggUser | $user | ) |
Update the timestamp linked to a persistent cookie code, this indicates that the code was used recently.
| \ElggUser | $user | the user to update the cookie code for |
Definition at line 193 of file PersistentLoginService.php.
| Elgg\PersistentLoginService::$_callable_elgg_set_cookie = 'elgg_set_cookie' |
Definition at line 50 of file PersistentLoginService.php.
|
protected |
Definition at line 24 of file PersistentLoginService.php.
|
protected |
Definition at line 29 of file PersistentLoginService.php.
|
protected |
Definition at line 39 of file PersistentLoginService.php.
|
protected |
Definition at line 44 of file PersistentLoginService.php.
|
protected |
Definition at line 34 of file PersistentLoginService.php.
1.8.11
